Stephen,
Argus 4.1 (in testing right now) automatically signs all messages with
the sending site's location certificate. The receivers of such signed
messages have the option to configure Argus to reject an incoming
message unless it has been digitally signed. Verification is done by
going straight to HeSA in real time when a message is downloaded by the
receiving site. Argus also checks HeSA's Certificate Revocation Lists to
confirm that the signing certificate has not been revoked.
You are correct: for HIC purposes, personal certs (smart card) must be
used. My team is about to re-integrate into Argus the ability to perform
personal signing. We left these modules dormant since 2003 because of a
lack of clarity regarding how personal signing was going to be
implemented in practical terms. The theory was great until cold, hard
practical reality hit us all.
Regards
Andrew
S+C Barnett wrote:
Hi Andrew,
We are just looking at the ability to sign pathology and specialist letters.
For HIC purposes, I gather they have to be signed by the personal certificate (
ie dongle) or has this now changed?
I'd be interested to hear if this can be done with location certs.
Stephen
-----Original Message-----
From: Andrew N. Shrosbree [mailto:[EMAIL PROTECTED]
Sent: Thursday, January 19, 2006 1:53 PM
To: [EMAIL PROTECTED]
Subject: Re: [GPCG_TALK] Digital signage with Terminal services
Does your business requirement demand personal signing?
I ask this because we have implemented the ability to sign with a
location certificate - gets around the need for physical devices.
S+C Barnett wrote:
Hi List,
Our 7 doctor practice runs off Terminal Services. Even if we have an app that
allows us to do digital signage of referrals to specialists/pathology using PKI
personal keys on USB, where do we put the 'dongle' ( so to speak!)?
The only answer I can think of is to put the USB into the server, but that's in
another part of the building, and would have to be left in all day.....hardly
drastically secure.
I suppose the other option is to keep the certs in the server, but have secure
password access to your own USB cert ( kind of 2-factor........)?
Any other thoughts?
Regards
Stephen
Stephen Barnett B.Med MRCGP FRACGP DCH (Lond)
--
Andrew N. Shrosbree B.Sc, B.Ec
Technical Director
ArgusConnect Pty Ltd
http://www.argusconnect.com.au
Suite 4, Greenhill Centre, Mt Helen
Victoria, Australia
Tel: +61 (0)3 5335 2214
Mob: +61 (0)415 645 291
Skype: andrewshroz
_______________________________________________
Gpcg_talk mailing list
[email protected]
http://ozdocit.org/cgi-bin/mailman/listinfo/gpcg_talk
